*Compromised Accounts* Potential Trojan 1/2/14

Post by Araxom

~Important Security PSA~

"We've been receiving reports regarding a dangerous Trojan that is being used to compromise player's accounts even if they are using an authenticator for protection. The Trojan acts in real time to do this by stealing both your account information and the authenticator password at the time you enter them.

If your account has been compromised recently, I'd recommend looking for the Trojan. It can be identified by creating an MSInfo file and then looking in the Startup Program section of that file for either Disker or Disker64.

We are currently looking for more information on the Trojan. We have not been able to locate any anti-virus programs that will remove it besides just reformatting your system. If you have been recently compromised and find it on your system please reply with the following pieces of information."

Edit: Thanks in part to the awesome work by the folks in the aforementioned thread, many of the major security companies have already been alerted. If you have not done so already, please be sure to update your security software and then run that at your earliest convenience.

/AraxomCustomer SupportBlizzard Entertainment

Post by Lakshmi

I'm sure it would be a daunting task, but since this could cause damage to your customer's hardware, wouldn't it be a good idea to send in-game mail about this?

Post by jomcclu

I am confused by what you mean Lakshmi. Blizzard does not necessarily have the responsibility to ensure that their customer's computers are secure. After all, the majority of causes for obtaining malware is based on the users actions, definitely not on a reputable program like Battle.net.

If a person's computer gets completely bent over backwards from this malware then there are a few options that they may take. First is, of course, to attempt to repair the problem themselves (if the person knows enough about their computer) and recover the computer to factory settings, which includes a full formatting of the drive(s). Second option is to take the computer to someone that does know what they are doing so that the device can be repaired.

Blizzard really can't do much more besides inform their customers about the threat. I would hardly expect for them to keep everyone updated on the possibilities of certain hardware devices of overheating; in the same manner, I do not think it would be reasonable for them to inform everyone, many of whom take their computers security very seriously, of such malware threats that arise on a day to day basis.

Post by Sas148

Removed

Post Reply

You are not logged in. Please log in to post a reply or register if you don't already have an account.